Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/mDidQcYQ65q8qs2VEzY345BntgY.roa
File: mDidQcYQ65q8qs2VEzY345BntgY.roa (raw, json)
Hash identifier: xUAldw/5GF+H/mvvSsfwCYxvusCuJMX1iXkuDC1xmCE=
Subject key identifier: 98:38:9D:41:C6:10:EB:9A:BC:AA:CD:95:13:36:37:E3:90:67:B6:06
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018B42B51A158D680BFF26948D342E1F762C
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/mDidQcYQ65q8qs2VEzY345BntgY.roa
Signing time: Wed 18 Oct 2023 12:14:06 +0000
ROA not before: Wed 18 Oct 2023 12:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203639
IP address blocks: 188.240.68.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:b5:1a:15:8d:68:0b:ff:26:94:8d:34:2e:1f:76:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 18 12:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98389d41c610eb9abcaacd95133637e39067b606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:82:e0:78:f2:4c:d4:c8:73:b4:b6:ea:2a:08:
a5:43:95:0f:cc:30:0c:1d:55:be:b6:b4:e0:c3:47:
7a:49:9a:d0:70:29:1f:b8:bf:65:ec:58:b5:ad:0f:
bd:c5:79:a2:c6:c2:00:13:a4:a5:bf:c1:2e:53:f1:
fc:d5:55:1a:07:0c:79:1c:36:18:03:51:ab:77:37:
e6:b4:dc:14:09:6e:f4:10:b5:e0:94:64:e5:9d:9d:
4d:98:bf:57:50:a4:ca:a6:3b:5e:99:cf:ff:ef:d0:
61:4d:8e:81:41:e2:39:ac:b3:8f:65:dd:1d:35:df:
aa:c9:c6:41:bd:44:1d:46:c8:c0:bf:d7:af:1b:6c:
9d:55:07:f9:da:de:03:05:bc:fb:bc:38:17:73:f3:
c7:fd:b9:7f:ad:0e:72:c0:a4:f9:58:45:b9:72:9d:
79:54:96:60:4e:58:38:ac:21:53:6d:70:8b:de:c0:
71:a7:ce:52:01:67:98:dc:25:4b:02:9b:9d:16:5f:
c8:e5:b9:88:63:e8:f6:43:0d:c2:45:f9:35:53:71:
ea:e5:30:91:d5:b0:34:ff:16:2b:0d:15:80:d0:d3:
b9:44:a1:38:04:09:fe:ff:66:f2:7f:10:a7:98:05:
ed:8a:8e:8a:3d:af:0a:4f:e7:bd:21:69:6d:29:fb:
ce:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:38:9D:41:C6:10:EB:9A:BC:AA:CD:95:13:36:37:E3:90:67:B6:06
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/mDidQcYQ65q8qs2VEzY345BntgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.68.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d2:20:5c:ed:20:58:f6:5b:23:c7:e4:1d:e1:33:49:78:b2:
b6:25:ff:38:5b:6c:cf:5b:a2:d0:7e:aa:7f:bc:18:e3:36:78:
f2:78:6a:99:4c:6d:7f:52:aa:1a:b8:e1:21:6b:51:0e:70:9a:
a9:0b:cb:2d:04:11:8b:51:2a:b6:7d:14:f4:e2:fe:e8:e6:4f:
d9:05:36:9a:89:e1:ba:8a:da:ec:b0:08:c9:23:ba:51:4e:a6:
e7:85:cc:d4:8a:f7:df:04:40:3f:17:88:99:98:9c:eb:f2:8a:
88:d1:89:24:59:66:5d:77:0c:32:5a:68:2d:cb:30:d4:7e:0e:
29:86:b9:7c:e6:42:5f:95:4b:c1:cf:06:ae:2c:5c:cf:42:e5:
22:e1:8e:3d:fa:da:29:d0:61:38:5d:2e:c5:69:e4:36:76:16:
a7:3f:d7:c7:96:bd:b6:1c:b8:ac:f1:f2:5f:a7:1d:41:91:aa:
b5:0f:45:81:bb:a8:2e:d3:b9:88:02:be:98:9a:87:67:dd:a9:
30:51:00:54:70:af:45:9b:83:76:b0:09:5f:eb:f6:07:3c:72:
c7:de:6d:35:10:1d:d6:c3:97:64:09:64:a7:e8:44:dc:38:2f:
37:10:9b:f1:08:d1:1e:49:10:6e:87:d2:ab:7a:1d:28:1a:60:
39:04:21:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 23 18:41:39 2023 by rpki-client on console-ams.rpki-client.org